2500

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

COMPLETE

Availability impact

NONE

network

low complexity

bluearc

NVD

Published: 2007-04-19

Updated: 2018-10-16

Summary

BlueArc-FTPD in BlueArc Titan 2x00 devices with firmware 4.2.944b allows remote attackers to redirect traffic to other sites (aka FTP bounce) via the PORT command, a variant of CVE-1999-0017.

Vulnerable Configurations

Part	Description	Count
Hardware	Bluearc Bluearc Titan * Bluearc Titan 2100 Bluearc Titan 2200 Bluearc Titan 2500	4

References

http://osvdb.org/35414
http://www.securityfocus.com/archive/1/466025/100/0/threaded
http://www.securityfocus.com/bid/23540
https://exchange.xforce.ibmcloud.com/vulnerabilities/33721